Remote Code Execution

⚔️ Attack Types Related 19
slug: rce

Explanation

RCE (Remote Code Execution) は「攻撃者が遠隔から、サーバー上で任意のプログラムを実行できる」最も深刻な脆弱性です。 これが成立すると、サーバー全体が乗っ取られ、データ全削除・暗号通貨マイニング・ランサムウェア感染・他社攻撃の踏み台化など何でもされます。 セキュリティ業界では「最悪レベル」「最優先で塞ぐべき」と扱われます。
📌 Example
Log4Shell (CVE-2021-44228), Heartbleed (CVE-2014-0160) の後継 OpenSSL系, MOVEit Transfer (CVE-2023-34362) など。被害規模は数千億円〜兆円単位。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,234

ID Title
CVE-2026-0139 Buffer Overflow in google (CVE-2026-0139)
CVE-2026-0126 Out-of-Bounds Write in google (CVE-2026-0126)
CVE-2026-0132 Vulnerability in google (CVE-2026-0132)
CVE-2026-53866 OpenClaw: Shell inline-command parsing could miss an allowlist check
CVE-2026-53857 OpenClaw: Zalo allowFrom could bind to mutable display names
CVE-2026-53855 OpenClaw: Shell positional parameters could weaken strict inline-eval checks
CVE-2026-48519 Code Injection in langflow (CVE-2026-48519)
CVE-2024-24909 Command Injection in CVE-2024-24909 (CVE-2024-24909)
CVE-2026-12398 OS Command Injection in galaxy-ng (CVE-2026-12398)
CVE-2026-10829 Vulnerability in CVE-2026-10829 (CVE-2026-10829)
CVE-2026-8442 Path Traversal in wordpress (CVE-2026-8442)
CVE-2026-6933 Unrestricted File Upload in wordpress (CVE-2026-6933)
CVE-2026-48853 Unsafe Deserialization in deserialization (CVE-2026-48853)
CVE-2026-48836 Unauthenticated Remote Code Execution (RCE) in Easy Invoice <= 2.1.19 versions.
CVE-2026-39465 Editor Remote Code Execution (RCE) in Responsive Slider by MetaSlider <= 3.106.0 versions.
CVE-2026-53705 Vulnerability in CVE-2026-53705 (CVE-2026-53705)
CVE-2026-52720 Vulnerability in CVE-2026-52720 (CVE-2026-52720)
CVE-2026-47835 Vulnerability in CVE-2026-47835 (CVE-2026-47835)
CVE-2026-38329 Vulnerability in CVE-2026-38329 (CVE-2026-38329)
CVE-2026-30120 Code Injection in remotion (CVE-2026-30120)
CVE-2018-25436 Unrestricted File Upload in wordpress (CVE-2018-25436)
CVE-2026-5482 Unrestricted File Upload in CVE-2026-5482 (CVE-2026-5482)
CVE-2026-53787 Unrestricted File Upload in path-traversal (CVE-2026-53787)
CVE-2026-50632 Vulnerability in apache (CVE-2026-50632)
CVE-2025-27511 Vulnerability in org.geoserver.extension:gs-db2 (CVE-2025-27511)
CVE-2026-11774 An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base)....
CVE-2026-48546 Vulnerability in CVE-2026-48546 (CVE-2026-48546)
CVE-2026-5497 vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS)...
CVE-2026-41699 Unsafe Deserialization in deserialization (CVE-2026-41699)
CVE-2026-10795 Vulnerability in wordpress (CVE-2026-10795)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →